Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Y-nKp4nOaSyxNJrbdxuCXMnCiiU.roa
File: Y-nKp4nOaSyxNJrbdxuCXMnCiiU.roa (raw, json)
Hash identifier: 8wW9rCt8ZrRTgtCj62QpyltjgC3Ct9aPm2492oCQbP8=
Subject key identifier: 63:E9:CA:A7:89:CE:69:2C:B1:34:9A:DB:77:1B:82:5C:C9:C2:8A:25
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018EC248C46065DA45869942114762F6427B
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Y-nKp4nOaSyxNJrbdxuCXMnCiiU.roa
Signing time: Tue 09 Apr 2024 09:55:32 +0000
ROA not before: Tue 09 Apr 2024 09:55:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47690
IP address blocks: 45.43.136.0/21 maxlen: 21
45.43.136.0/24 maxlen: 24
45.43.137.0/24 maxlen: 24
45.43.138.0/24 maxlen: 24
45.43.139.0/24 maxlen: 24
45.43.140.0/24 maxlen: 24
45.43.141.0/24 maxlen: 24
45.43.142.0/24 maxlen: 24
45.43.143.0/24 maxlen: 24
45.43.144.0/24 maxlen: 24
45.43.145.0/24 maxlen: 24
45.43.146.0/24 maxlen: 24
45.43.147.0/24 maxlen: 24
45.43.148.0/24 maxlen: 24
45.43.149.0/24 maxlen: 24
45.43.150.0/24 maxlen: 24
45.43.151.0/24 maxlen: 24
45.43.152.0/24 maxlen: 24
45.43.154.0/24 maxlen: 24
45.43.155.0/24 maxlen: 24
45.43.156.0/24 maxlen: 24
45.43.157.0/24 maxlen: 24
45.43.158.0/24 maxlen: 24
45.43.159.0/24 maxlen: 24
45.43.160.0/24 maxlen: 24
45.43.161.0/24 maxlen: 24
45.43.162.0/24 maxlen: 24
64.137.16.0/24 maxlen: 24
104.222.176.0/24 maxlen: 24
104.222.177.0/24 maxlen: 24
104.222.178.0/24 maxlen: 24
104.222.179.0/24 maxlen: 24
104.222.180.0/24 maxlen: 24
104.222.181.0/24 maxlen: 24
104.222.182.0/24 maxlen: 24
104.222.183.0/24 maxlen: 24
104.222.189.0/24 maxlen: 24
104.233.8.0/24 maxlen: 24
104.233.9.0/24 maxlen: 24
104.233.31.0/24 maxlen: 24
104.233.32.0/24 maxlen: 24
104.233.33.0/24 maxlen: 24
104.233.34.0/24 maxlen: 24
104.233.35.0/24 maxlen: 24
104.233.36.0/24 maxlen: 24
104.233.37.0/24 maxlen: 24
104.233.38.0/24 maxlen: 24
104.233.39.0/24 maxlen: 24
104.233.40.0/24 maxlen: 24
104.233.41.0/24 maxlen: 24
104.233.42.0/24 maxlen: 24
104.233.43.0/24 maxlen: 24
104.233.44.0/24 maxlen: 24
104.233.45.0/24 maxlen: 24
104.233.46.0/24 maxlen: 24
104.233.47.0/24 maxlen: 24
104.233.56.0/24 maxlen: 24
104.233.57.0/24 maxlen: 24
104.233.58.0/24 maxlen: 24
104.233.59.0/24 maxlen: 24
104.238.6.0/24 maxlen: 24
104.238.11.0/24 maxlen: 24
104.238.12.0/24 maxlen: 24
104.238.13.0/24 maxlen: 24
104.238.15.0/24 maxlen: 24
104.238.16.0/24 maxlen: 24
104.238.17.0/24 maxlen: 24
104.238.18.0/24 maxlen: 24
104.238.21.0/24 maxlen: 24
104.238.22.0/24 maxlen: 24
104.238.23.0/24 maxlen: 24
104.238.24.0/24 maxlen: 24
104.238.25.0/24 maxlen: 24
104.238.28.0/24 maxlen: 24
104.238.30.0/24 maxlen: 24
104.239.8.0/24 maxlen: 24
104.239.9.0/24 maxlen: 24
104.239.12.0/24 maxlen: 24
104.239.14.0/24 maxlen: 24
104.239.15.0/24 maxlen: 24
104.239.29.0/24 maxlen: 24
104.239.45.0/24 maxlen: 24
104.239.46.0/24 maxlen: 24
104.239.48.0/24 maxlen: 24
104.239.54.0/24 maxlen: 24
104.239.55.0/24 maxlen: 24
104.239.56.0/24 maxlen: 24
104.239.57.0/24 maxlen: 24
104.239.58.0/24 maxlen: 24
104.239.59.0/24 maxlen: 24
104.239.60.0/24 maxlen: 24
104.239.61.0/24 maxlen: 24
104.239.62.0/24 maxlen: 24
104.239.63.0/24 maxlen: 24
104.239.64.0/24 maxlen: 24
104.239.65.0/24 maxlen: 24
104.239.66.0/24 maxlen: 24
104.239.67.0/24 maxlen: 24
104.239.72.0/24 maxlen: 24
104.239.74.0/24 maxlen: 24
104.239.79.0/24 maxlen: 24
104.239.83.0/24 maxlen: 24
104.239.87.0/24 maxlen: 24
104.239.89.0/24 maxlen: 24
104.239.99.0/24 maxlen: 24
104.239.100.0/24 maxlen: 24
104.239.102.0/24 maxlen: 24
104.239.103.0/24 maxlen: 24
104.239.109.0/24 maxlen: 24
104.239.110.0/24 maxlen: 24
104.239.127.0/24 maxlen: 24
104.249.8.0/24 maxlen: 24
104.249.9.0/24 maxlen: 24
104.249.10.0/24 maxlen: 24
104.249.11.0/24 maxlen: 24
104.249.12.0/24 maxlen: 24
104.249.13.0/24 maxlen: 24
104.249.14.0/24 maxlen: 24
104.249.15.0/24 maxlen: 24
104.249.16.0/24 maxlen: 24
104.249.17.0/24 maxlen: 24
104.249.18.0/24 maxlen: 24
104.249.19.0/24 maxlen: 24
104.249.20.0/24 maxlen: 24
104.249.21.0/24 maxlen: 24
104.249.22.0/24 maxlen: 24
104.249.23.0/24 maxlen: 24
104.249.42.0/24 maxlen: 24
104.249.43.0/24 maxlen: 24
104.249.44.0/24 maxlen: 24
104.249.45.0/24 maxlen: 24
104.249.46.0/24 maxlen: 24
104.249.47.0/24 maxlen: 24
104.249.48.0/24 maxlen: 24
104.249.49.0/24 maxlen: 24
104.249.50.0/24 maxlen: 24
104.249.51.0/24 maxlen: 24
104.249.52.0/24 maxlen: 24
104.249.53.0/24 maxlen: 24
104.249.54.0/24 maxlen: 24
216.173.64.0/22 maxlen: 22
216.173.77.0/24 maxlen: 24
216.173.90.0/24 maxlen: 24
216.173.91.0/24 maxlen: 24
216.173.92.0/24 maxlen: 24
216.173.93.0/24 maxlen: 24
216.173.94.0/24 maxlen: 24
216.173.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 19:49:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c2:48:c4:60:65:da:45:86:99:42:11:47:62:f6:42:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Apr 9 09:55:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63e9caa789ce692cb1349adb771b825cc9c28a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4f:bf:3d:78:8b:99:29:f3:8c:b6:01:64:b2:
cc:63:fd:d6:62:fe:b3:35:35:10:86:4a:74:c5:91:
6d:53:ff:7e:a6:4a:38:ef:f3:21:70:05:f7:48:b7:
e8:56:0c:63:4e:eb:fe:cd:67:e5:5b:ee:7d:87:88:
f9:63:24:45:95:92:33:3b:f5:cb:a2:f1:2a:24:e5:
44:05:a6:1d:86:16:19:45:83:40:cc:52:c2:3f:6e:
f6:90:1f:43:f1:62:6b:f7:52:27:12:9c:e9:87:87:
2d:5d:10:8d:8e:12:dd:5b:70:0e:3f:5d:de:b7:31:
b9:32:f9:fe:d9:a4:b1:25:c1:b7:6b:1e:90:fe:3c:
c4:80:58:78:5c:47:b2:20:3d:86:02:b9:97:4d:c9:
22:4a:77:f9:f1:e3:51:b0:a1:f4:de:2b:50:96:09:
78:c6:6f:9b:50:84:f2:50:ca:85:1b:c4:0e:1c:6d:
7f:b4:fc:39:fa:48:9c:34:0a:3e:c1:33:7b:5c:05:
e4:de:69:36:6c:15:67:f8:95:08:ff:40:31:38:a7:
14:ae:54:13:0a:ef:98:82:37:de:67:3a:ab:d0:34:
e8:09:4f:98:e3:94:06:bc:7d:6c:d6:17:e0:1c:5e:
f7:3c:fa:52:22:7e:2b:7b:e3:ed:05:eb:20:59:d6:
20:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E9:CA:A7:89:CE:69:2C:B1:34:9A:DB:77:1B:82:5C:C9:C2:8A:25
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Y-nKp4nOaSyxNJrbdxuCXMnCiiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.136.0-45.43.152.255
45.43.154.0-45.43.162.255
64.137.16.0/24
104.222.176.0/21
104.222.189.0/24
104.233.8.0/23
104.233.31.0-104.233.47.255
104.233.56.0/22
104.238.6.0/24
104.238.11.0-104.238.13.255
104.238.15.0-104.238.18.255
104.238.21.0-104.238.25.255
104.238.28.0/24
104.238.30.0/24
104.239.8.0/23
104.239.12.0/24
104.239.14.0/23
104.239.29.0/24
104.239.45.0-104.239.46.255
104.239.48.0/24
104.239.54.0-104.239.67.255
104.239.72.0/24
104.239.74.0/24
104.239.79.0/24
104.239.83.0/24
104.239.87.0/24
104.239.89.0/24
104.239.99.0-104.239.100.255
104.239.102.0/23
104.239.109.0-104.239.110.255
104.239.127.0/24
104.249.8.0-104.249.23.255
104.249.42.0-104.249.54.255
216.173.64.0/22
216.173.77.0/24
216.173.90.0-216.173.95.255
Signature Algorithm: sha256WithRSAEncryption
35:80:5d:f6:e6:d2:57:06:14:63:cf:f6:b1:da:7e:c1:97:26:
fe:b4:1e:94:eb:7e:82:c5:7f:74:e6:38:2a:a1:3f:aa:d6:08:
b6:01:4d:8a:1c:19:b8:00:90:e2:68:1b:91:f0:8e:be:24:4e:
bf:6d:36:d3:5e:06:52:34:90:59:0d:ab:c2:ce:4b:bf:b7:1a:
0a:d4:39:c5:76:ee:67:c5:d2:b2:d0:2e:83:9e:36:8a:ab:6a:
b7:59:07:ae:a3:47:e3:b9:c5:a8:15:5f:c9:ed:eb:7f:02:1f:
ac:8c:01:c3:cd:35:2b:7c:ce:2d:29:e5:2f:3e:3a:1a:3a:7a:
a2:b4:3e:38:7d:4d:06:3a:79:54:28:e5:d9:28:89:c0:e3:64:
4f:54:dd:ad:81:eb:67:a7:b0:8c:49:17:45:e9:bb:4c:0c:db:
69:c5:c3:4b:eb:58:07:04:e2:17:3a:fe:33:19:70:60:a0:20:
1b:c3:c9:24:1c:e3:31:d1:42:d5:f5:09:0a:85:d4:18:2e:83:
2d:0b:3e:66:06:ad:88:ee:ba:b1:77:3e:37:84:85:7f:e9:8e:
f5:9b:cf:46:2e:a4:6d:ed:ec:be:32:19:01:51:c2:54:b9:ec:
85:bd:83:b9:1e:aa:f9:61:bc:ec:ed:b4:7e:de:1c:d5:27:0e:
dc:62:5d:a5
-----BEGIN CERTIFICATE-----
MIIGQTCCBSmgAwIBAgISAY7CSMRgZdpFhplCEUdi9kJ7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj
Mzg1ZTkwHhcNMjQwNDA5MDk1NTMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2U5Y2FhNzg5Y2U2OTJjYjEzNDlhZGI3NzFiODI1Y2M5YzI4YTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtk+/PXiLmSnzjLYBZLLMY/3WYv6z
NTUQhkp0xZFtU/9+pko47/MhcAX3SLfoVgxjTuv+zWflW+59h4j5YyRFlZIzO/XL
ovEqJOVEBaYdhhYZRYNAzFLCP272kB9D8WJr91InEpzph4ctXRCNjhLdW3AOP13e
tzG5Mvn+2aSxJcG3ax6Q/jzEgFh4XEeyID2GArmXTckiSnf58eNRsKH03itQlgl4
xm+bUITyUMqFG8QOHG1/tPw5+kicNAo+wTN7XAXk3mk2bBVn+JUI/0AxOKcUrlQT
Cu+YgjfeZzqr0DToCU+Y45QGvH1s1hfgHF73PPpSIn4re+PtBesgWdYgVwIDAQAB
o4IDTTCCA0kwHQYDVR0OBBYEFGPpyqeJzmkssTSa23cbglzJwoolMB8GA1UdIwQY
MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt
ZmIwNzk1NWYzYWFhLzEvWS1uS3A0bk9hU3l4TkpyYmR4dUNYTW5DaWlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh
LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBYQYIKwYBBQUHAQcBAf8EggFQMIIBTDCCAUgEAgABMIIB
QDAMAwQDLSuIAwQALSuYMAwDBAEtK5oDBAAtK6IDBABAiRADBANo3rADBABo3r0D
BAFo6QgwDAMEAGjpHwMEBGjpIAMEAmjpOAMEAGjuBjAMAwQAaO4LAwQBaO4MMAwD
BABo7g8DBABo7hIwDAMEAGjuFQMEAWjuGAMEAGjuHAMEAGjuHgMEAWjvCAMEAGjv
DAMEAWjvDgMEAGjvHTAMAwQAaO8tAwQAaO8uAwQAaO8wMAwDBAFo7zYDBAJo70AD
BABo70gDBABo70oDBABo708DBABo71MDBABo71cDBABo71kwDAMEAGjvYwMEAGjv
ZAMEAWjvZjAMAwQAaO9tAwQAaO9uAwQAaO9/MAwDBANo+QgDBANo+RAwDAMEAWj5
KgMEAGj5NgMEAtitQAMEANitTTAMAwQB2K1aAwQF2K1AMA0GCSqGSIb3DQEBCwUA
A4IBAQA1gF325tJXBhRjz/ax2n7Blyb+tB6U636CxX905jgqoT+q1gi2AU2KHBm4
AJDiaBuR8I6+JE6/bTbTXgZSNJBZDavCzku/txoK1DnFdu5nxdKy0C6DnjaKq2q3
WQeuo0fjucWoFV/J7et/Ah+sjAHDzTUrfM4tKeUvPjoaOnqitD44fU0GOnlUKOXZ
KInA42RPVN2tgetnp7CMSRdF6btMDNtpxcNL61gHBOIXOv4zGXBgoCAbw8kkHOMx
0ULV9QkKhdQYLoMtCz5mBq2I7rqxdz43hIV/6Y71m89GLqRt7ey+MhkBUcJUueyF
vYO5Hqr5Ybzs7bR+3hzVJw7cYl2l
-----END CERTIFICATE-----
Generated at Fri Apr 12 21:43:35 2024 by rpki-client on console-ams.rpki-client.org